$ rpki-client -vvf rpki.apnic.net/member_repository/A9149905/394D064A1D9B11E2BE12EF8808B02CD2/y7aOmQU8HeJHirvi3_KrzsDRsUg.mft File: y7aOmQU8HeJHirvi3_KrzsDRsUg.mft (raw, json) Hash identifier: t5ywedc9VN9QbaRbDUchMQVSY4igIsad+b0ZEToLupA= Subject key identifier: 79:0D:53:B0:EE:E8:7B:9E:17:99:0A:3D:6E:76:0F:37:7F:0F:F8:50 Authority key identifier: CB:B6:8E:99:05:3C:1D:E2:47:8A:BB:E2:DF:F2:AB:CE:C0:D1:B1:48 Certificate issuer: /CN=A9149905/serialNumber=CBB68E99053C1DE2478ABBE2DFF2ABCEC0D1B148 Certificate serial: 3546 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y7aOmQU8HeJHirvi3_KrzsDRsUg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9149905/394D064A1D9B11E2BE12EF8808B02CD2/y7aOmQU8HeJHirvi3_KrzsDRsUg.mft Manifest number: 353D Signing time: Wed 06 May 2026 14:56:23 +0000 Manifest this update: Wed 06 May 2026 14:56:23 +0000 Manifest next update: Wed 13 May 2026 14:56:23 +0000 Files and hashes: 1: y7aOmQU8HeJHirvi3_KrzsDRsUg.crl (hash: T9oX7fwtNp1UsWxyINUmYpyAMa+51Am5YrTzH0L0hds=) 2: A6D6CA7E022C11EBAC47A831C4F9AE02.roa (hash: k15XvHBFTQxYQednyHDCk4s/WtIgkfY4gwfxlATMUsU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9149905/394D064A1D9B11E2BE12EF8808B02CD2/y7aOmQU8HeJHirvi3_KrzsDRsUg.crl rsync://rpki.apnic.net/member_repository/A9149905/394D064A1D9B11E2BE12EF8808B02CD2/y7aOmQU8HeJHirvi3_KrzsDRsUg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y7aOmQU8HeJHirvi3_KrzsDRsUg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 14:56:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13638 (0x3546) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9149905, serialNumber=CBB68E99053C1DE2478ABBE2DFF2ABCEC0D1B148 Validity Not Before: May 6 14:56:23 2026 GMT Not After : May 13 14:56:23 2026 GMT Subject: CN=69fb5697-0144 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:11:5a:e5:08:40:21:a8:77:94:c0:88:fb:cb: 87:d9:c4:d2:4f:d3:5e:90:49:cf:5c:87:78:46:20: 39:a3:35:57:c8:ab:c9:17:f7:30:8b:d2:33:b4:07: ad:3b:f6:5d:20:b6:9a:0f:a6:69:37:e3:f6:83:cb: 45:81:41:d7:e5:77:b9:73:7c:43:81:bd:83:0d:49: fe:ef:89:e8:e6:7e:b0:ac:45:eb:ff:a5:b8:59:c5: 13:01:a6:5f:4b:5f:ee:0e:9f:d9:01:62:36:5f:b6: 31:9e:c2:9f:4a:3d:df:01:9f:db:73:ae:90:07:45: 5f:9e:7f:8e:2f:ba:7b:75:da:f5:77:60:92:43:b8: 14:ba:e3:df:aa:a9:f2:e9:e8:e0:bd:9d:5f:4d:2c: 21:9b:4b:63:bf:92:33:ca:93:12:89:83:1a:92:fb: f6:45:99:f4:43:17:2a:da:44:dc:7d:b5:12:79:76: 44:01:2c:69:fd:f9:bc:99:e5:e2:5d:2f:f5:c7:62: f0:97:d8:b0:89:1f:20:94:29:cd:01:4a:78:ff:c0: d2:85:1a:09:b0:d4:44:1e:71:a2:1e:57:46:c0:d1: ba:7d:28:eb:e9:2b:0a:58:c1:2a:81:34:24:41:9e: 9e:da:c7:54:6c:f4:c5:05:7f:f6:24:f3:d6:d1:c6: 9c:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:0D:53:B0:EE:E8:7B:9E:17:99:0A:3D:6E:76:0F:37:7F:0F:F8:50 X509v3 Authority Key Identifier: keyid:CB:B6:8E:99:05:3C:1D:E2:47:8A:BB:E2:DF:F2:AB:CE:C0:D1:B1:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9149905/394D064A1D9B11E2BE12EF8808B02CD2/y7aOmQU8HeJHirvi3_KrzsDRsUg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y7aOmQU8HeJHirvi3_KrzsDRsUg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9149905/394D064A1D9B11E2BE12EF8808B02CD2/y7aOmQU8HeJHirvi3_KrzsDRsUg.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 66:f0:8f:ca:e3:21:a0:48:c4:9a:bc:c4:05:b2:5c:cb:22:06: 81:25:c5:ec:dc:9c:8f:27:72:2b:4d:66:ba:ef:2f:03:8e:3a: 13:50:67:52:6b:d7:cf:5b:5d:1a:2c:8b:47:50:f9:ce:36:07: f8:3d:10:6f:42:b6:ad:8c:43:e2:21:14:5b:24:20:37:95:9d: 3f:d1:6d:88:e1:6d:f6:b3:64:02:07:af:09:e9:3f:b6:ea:fb: 6a:3a:4f:52:b6:27:8a:80:26:26:cc:00:9f:ac:73:59:98:24: 07:e3:fa:cd:8a:e4:10:18:77:e1:35:92:5f:bb:58:ae:b8:1e: ba:fc:bf:70:37:7d:77:8b:1e:21:10:b1:0a:c3:d4:a4:82:c7: f2:96:66:c4:9a:88:56:92:50:d1:91:ca:6c:94:27:18:13:5d: 2f:b2:74:7c:7a:19:42:fc:82:7c:c2:9a:2f:91:e7:9f:d8:6b: bd:ed:d7:fc:76:29:65:93:c7:68:2e:d8:83:66:9c:49:d7:48: e0:d5:68:c2:cf:5f:0a:f0:69:29:c8:ef:68:7a:18:db:65:d2: 91:da:45:bd:d3:ff:13:61:fc:33:87:d8:d4:90:b4:76:99:53: 2b:24:a9:7e:d2:8f:3a:a5:5b:98:59:5c:db:8b:2a:64:3c:0b: e9:05:b4:86 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICNUYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDk5MDUxMTAvBgNVBAUTKENCQjY4RTk5MDUzQzFERTI0NzhBQkJFMkRGRjJBQkNF QzBEMUIxNDgwHhcNMjYwNTA2MTQ1NjIzWhcNMjYwNTEzMTQ1NjIzWjAYMRYwFAYD VQQDEw02OWZiNTY5Ny0wMTQ0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxBFa5QhAIah3lMCI+8uH2cTST9NekEnPXId4RiA5ozVXyKvJF/cwi9IztAet O/ZdILaaD6ZpN+P2g8tFgUHX5Xe5c3xDgb2DDUn+74no5n6wrEXr/6W4WcUTAaZf S1/uDp/ZAWI2X7YxnsKfSj3fAZ/bc66QB0Vfnn+OL7p7ddr1d2CSQ7gUuuPfqqny 6ejgvZ1fTSwhm0tjv5IzypMSiYMakvv2RZn0Qxcq2kTcfbUSeXZEASxp/fm8meXi XS/1x2Lwl9iwiR8glCnNAUp4/8DShRoJsNREHnGiHldGwNG6fSjr6SsKWMEqgTQk QZ6e2sdUbPTFBX/2JPPW0cacewIDAQABo4ICczCCAm8wHQYDVR0OBBYEFHkNU7Du 6HueF5kKPW52Dzd/D/hQMB8GA1UdIwQYMBaAFMu2jpkFPB3iR4q74t/yq87A0bFI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OTkwNS8zOTREMDY0QTFE OUIxMUUyQkUxMkVGODgwOEIwMkNEMi95N2FPbVFVOEhlSkhpcnZpM19LcnpzRFJz VWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3k3YU9tUVU4SGVKSGlydmkzX0tyenNEUnNVZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 OTkwNS8zOTREMDY0QTFEOUIxMUUyQkUxMkVGODgwOEIwMkNEMi95N2FPbVFVOEhl SkhpcnZpM19LcnpzRFJzVWcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAZvCPyuMhoEjEmrzEBbJcyyIGgSXF7NycjydyK01muu8vA446E1BnUmvXz1td GiyLR1D5zjYH+D0Qb0K2rYxD4iEUWyQgN5WdP9FtiOFt9rNkAgevCek/tur7ajpP UrYnioAmJswAn6xzWZgkB+P6zYrkEBh34TWSX7tYrrgeuvy/cDd9d4seIRCxCsPU pILH8pZmxJqIVpJQ0ZHKbJQnGBNdL7J0fHoZQvyCfMKaL5Hnn9hrve3X/HYpZZPH aC7Yg2acSddI4NVows9fCvBpKcjvaHoY22XSkdpFvdP/E2H8M4fY1JC0dplTKySp ftKPOqVbmFlc24sqZDwL6QW0hg== -----END CERTIFICATE-----Generated at Thu May 7 10:21:16 2026 by rpki-client